Hey everyone!
With the Labour Day holidays coming up, we’d like to let you know about our upcoming working hours:
Thursday, May 1st: Our team will be off during Labour Day.
Friday, May 2nd: We'll also be off for an extended holiday break.
We’ll be back on Monday, May 5th, ready to respond to all messages received during this time.
In the meantime, if you need help, feel free to:
-
Use the support widget on the bottom right of our websites (Amelia and wpDataTables) — our AI-powered assistant is available 24/7 and can help with many common questions.
-
Visit our documentation, articles, or YouTube channels for quick answers and step-by-step guides.
https://www.youtube.com/@AmeliaWordPressBookingPlugin/videos
https://www.youtube.com/@wpDataTables/videos
Thank you for being so understanding, and we hope you enjoy the long weekend!
Hello!
Currently there is a bugfix for SQL vulnerability for the plugin, which can be downloaded as the latest version from the repo with version 2.1.52, the security report says that the bug is already fixed in version 3.4.2.
The link is https://patchstack.com/database/vulnerability/wpdatatables/wordpress-wpdatatables-plugin-3-4-1-multiple-sql-injection-sqli-vulnerabilities?_a_id=350
What is the solution? Because the way I see it, there's either a serious mistake or an even more serious problem...
Thank's, Sandor
Hi, Sandor.
The vulnerability was found in the full version of wpDataTables v3.4.1, so all premium versions before that can be affected.
Lite version does not have these functionalities (such as SQL based tables),
so Lite version was never affected.
Those reports are not related to the Lite version, but they can be reported in the lite version because the resources where this information about themes or plugins vulnerabilities are stored are generated by the theme or the plugin slug. Those slugs are the same in both lite and the full version, and because of that, you get those notifications.
The important thing is that there’s nothing to worry about. Newer versions of the wpDataTable premium don’t have these issues, ( the latest one is 5.1)
and Lite versions never did.
Unfortunately, until wpDataTables Lite goes above version 3.4.2 these reports will indicate a false positive. The lite and the full version have the same slug (wpdatatables), and that’s why the security plugins can’t differentiate between the versions.
I hope this helps, do let us know if you need any further assistance.
Kind Regards,
Miloš Jovanović
[email protected]
Rate my support
Try our FREE mapping plugin! MapSVG - easy Google maps, interactive SVG maps and floor plans, choropleth maps and much more - https://wordpress.org/plugins/mapsvg-lite-interactive-vector-maps/
wpDataTables: FAQ | Facebook | Twitter | Instagram | Front-end and back-end demo | Docs
Amelia: FAQ | Facebook | Twitter | Instagram | Amelia demo sites | Docs | Discord Community
You can try wpDataTables add-ons before purchasing on these sandbox sites:
Powerful Filters | Gravity Forms Integration for wpDataTables | Formidable Forms Integration for wpDataTables | Master-Detail Tables